SysLog Forwarding for XenServer
-
@BRRABill said in SysLog Forwarding for XenServer:
@DustinB3403 said in SysLog Forwarding for XenServer:
So what would be a good aggregation tool to be able to view the logs?
If Splunk stops at a tiny level..... I won't bother with it.
500MB per day.
yeah that's worthless......
-
-
@DustinB3403 said
yeah that's worthless......
You'll want to avoid logg.ly before someone recommends it, then. That is 200MB per day.
-
So elk/logstash then?
Wasn't there a post around here by scott on how to set this up?
-
Has anyone setup syslog with Elk (with Elasticsearch 2.3 or greater) and Kibana
-
@DustinB3403 Maybe one of these?
-
@Danp said in SysLog Forwarding for XenServer:
@DustinB3403 Maybe one of these?
I was actually just looking at that and Kibana...
I'm trying to determine if I can run it locally or if I need a DO account to do it...
-
@DustinB3403 said in SysLog Forwarding for XenServer:
Has anyone setup syslog with Elk (with Elasticsearch 2.3 or greater) and Kibana
I'm pretty sure my walkthrough covers that.
-
@scottalanmiller This one, correct?
-
-
Let me know how it goes. I'd love to install another free server around here.
TAKE THAT MICROSOFT!
-
I'm getting stuck at
./load.sh
with
Loading dashboards to http://localhost:9200 in .kibana Loading search Cache-transactions: curl: (7) Failed connect to localhost:9200; Connection timed out
-
You know if I wasn't tired I would've noticed that @scottalanmiller made that a bash file.......
-
Sadly the connection timed out still......
I might have to make a clean installation tomorrow and deal with it then. . . .
-
And filebeat is not able to be found...
Ok coming back to this from my house where I can work with a beer..
-
Filebeat not found where?
-
@scottalanmiller from this continuation here.
https://mangolassi.it/topic/8308/configuring-logstash-and-filebeat-to-send-to-elk-logging-system
-
But you can't find the download?
-
@scottalanmiller Correct, when I attempt to run the bash file, I'm responded with filebeat not found from any yum repository.
-
I'm starting a clean installation on my personal lab to test with.
Should I bother with the syslog configuration before setting up Elk and LogStash?